Thats because some people have good computers which they care about with sensitive information on it.

Yes it's pretty hilarious.


Other people happen to have good computers with decent security.

But has anyone actually been affected by this yet? It seems everyone has an antivirus or browsers that detect it.

Like 4 people.

ALL WHICH HAD IE.

Coincidence?

Opera is better than FF3 but it doesn't have all the plug-ins FF does, and it sometimes does weird things like blank out the whole page while you're reading it.

It's also slower than FF3.

Un_t0uch - Come on DON'T BE STUPID

Those not affected is because the browser silently downloaded it.

I repeat, firefox causes the same problems as IE when viewing the page.

By the way, it's been fixed. Eventhough if it has another url instead of the old one. I guess it is routine though.

The only coincidence I see, is the constant made up crap and non-sense I see in your posts.

First of all, reports of the presence of malicious code has been reported by IE users, FF users and Chrome users.

Second, the malicious code is present in the GMC forums, not the browsers.

Third, the reporting of potential malicious code is a good thing.

Fourth, absolutely nobody has reported being infected.

Fifth, assuming one has AV software and IE, one has to deliberately mis-click three times to be infected, possibly more. First they have to mis-click their Anti-virus warning. Then they have to approve the yellow IE warning about downloading the malicious code, then they have to agree to run the unsigned code.

Last, the constant made-up non-sense in a lot of your posts, isn't coincidence.

I never said that only people using IE were getting reports, I said only people were getting the virus.
Firefox doesn't load the code, nor chrome.

Where IE does.

No, you didn't. The question you responded to was who was getting "affected". You then made up the number 4, then decided that only IE people where affected.

I've already explained to you what is necessary for IE to save and execute the malicious code.

If your definition of "affected" is a warnings, then all three browsers have been affected.

If your definition of "affected" is actually running the malicious code, then show me one post where someone has claimed to have run it.

The basic fact is; you have nothing to offer, so you make up your crap propaganda to spread your stupid agenda. Your only contributions to this thread have been, Firefox Good, IE Bad.

I haven't gotten 1 popup like this on FF.
Not sure if this is just a warning.
but I'm pretty sure saying there is a trojan found on your cpu isn't.

And this is why you really should not be commenting, you don't have a clue as to what the significance that that screenshot implies.

As I said in my previous two posts, that no malicious code, has been executed yet.

This is bad. Some thing popped up asking me if I wanted to run some Java program and it wanted to install some ActiveX control when I came on to this site. And now my AVG scanner has been disabled for unknown reasons. What should I do?

My computer actually FOUND 2 viruses and a trojan on my PC from here, which I can delete, and all is well, but as soon as I restart my computer, there they are again. Luckilly they are (as of now) just taking up space, because my computer blocks them every time I turn on my computer.

Okay. This Java thing popped up again and I took a screenshot of it.

The box was checked by defualt, but I clicked cancel.
Also, this has nothing to do with Vista or anything, since I am using XP skinned to look like Vista, so don't bring that up.

I'd go work on a game or come back later. And restart your computer.

Excellent advice. All the YYG Admins were notified about this when it first occurred. There's nothing more the GMC staff can do.

So anyone worried about this should definitely leave the GMC now. While you're gone you might want to re-install GM just to be safe.

I got absolutely nothing in FireFox. I even kept a steady eye on what pages were loading, over 10 GMC pages loaded over and over and I never found even one of the websites mentioned.(I did this earlier when the original "oh no" thread was posted.)

Now, I just got Google Chrome. I've been through about 5 GMC pages already, no warnings of any kind. I've done two computer scans since, with AVG, as well. So, yeah. I see no problems.

Why is there always a discussion bashing IE7. I never hear anything intelligent on how FF is so much better than IE. Personally I think some people just like FF, Chrome, Opera, etc. because it isn't "standard" with every computer and people like to be different. I've used both FF and IE. The only things i really saw a difference in was the gui (i think thats the right term) for downloading, and how when you go to view the source of a page, its formatted to look nice. I do know however that FF users have their temper tandrums when they dont get their YoYo Games Player fixes when a new version of FF comes out every 3 days.

I think I found the attackers IP, I am not sure if this helps or not, but I am trying, so don't flame me if I am wrong.

This is the funniest thing I've heard from here in some time!
I suggest taking KC_LC's advice without reading Anymore topics in this forum XD . Hahaha.

Oh, by the way, if Firefox tries executing it silently, while IE just breaks it off, I see it quit good in IE to do that.

I mean what is the point of security? Of blocking the threats or running them silently? Unless certain people here are completely stupid, other would know which is the obvious answer.

Now secondly, YOU CAN NOT GET INFECTED UNLESS YOU RUN THE JAR.
A browser only executes HTML/JS and cannot run malicious native code without the user's permission to download and run executable files.The only vulnerability in IE is those ActiveX controls, which I'm sure I know what one of them is being intended for (haha, I've known about that exploit a looong time ago - sorry, for order's sake I'll keep it secret). But in any case, IE has nothing to do with the exploits - only a small fraction has to do with IE. While at it, I'd like to be fair and mention that there are a lot of Firefox extensions which spy on you.

Anyway, I was wrong this problem was not fixed. The hacker seems to have some access to the forum in order to change the link.

I'll look into IPB eploits personally.

SilentxxBunny - Good, but you can find that URL by looking at the forum code. By the way, that's the new url.

I get that aswell but using IE7. I'm glad somebody brought that up. But also ***** A.P.P.L.E.T in the bottom left where the page loads pops up everytime i refresh a page on the GMC.

From the source code:


Done some research, the virus can disguise itself as this in the system32 folder, although it is present in all system32 folders.

Safest option IMO would be to temporarily close the forum, and look for potential leaks on the forum.

As edmunn said above, the virus will place itself inside the system32 folder of your computer. If you where to execute the malicious code, you would simply be redirected back to Google, while the above files would be injected into your system. As to what the virus does, I have no idea.

Me eiother, I can't find much about it.
Still curious that it's on the GMC page, must be something related to virus'.

Found some information
It is a virus, that checks for 2certain vulnerable Quicktime browser objects.2

http://malwaredatabase.net/blog/index.php/2008/09/06/exploit-page-installs-msupd_0809_upd070148exe-video/

From Google (regarding augreat.mine.nu):



On top of that, Google lists that the virus has infected, as of now, 311 domains. We can conclude that the GMC may be one of them, as the alert clearly shows when visiting the GMC.

For those who are interested, here is the full report.

Is anyone using FF with NoScript? I get an alert of NoScript blocking "inetppui.com", though I don´t remember if I usually get this...

We are safe for now. The page that is loaded in the iframe, changes now and then. The page that is currently beeing loaded, results in a

404 Not Found
error. BUT Chrome will keep saying that the GMC is infected because the page still contains the iframe.

Just out of curiosity, how many people are actually using Chrome full/part time, beyond testing it? Honestly, I find that it really is a truly lacking browser.

I have Nod32 and its one of the best anti virus in the world, if you dont believe me go to www.nod32.com
And the Nod32 Internet Monitor showed this trojan downloader page on 21:00 h .
So its still here and the virus is spreading via google.

People should just have a good anti virus and NOT one thats free ! cuz those are really bad.

Edmunn - We know about that, that is what I found back when I and Hach reported the virus, except it was a different URL.
I have no idea where you got that info about the system32 thing. The virus can't magically apear into that folder unles:
-You gave permission to do that
-You are using Google's high security Chrome

spacerat - You are the idiot. IE is not the best but it is not what you're calling it.
You'de be a complete idiot comparing IE to Firefox. In IE you can always cancel running ActiveX or downloading programs. In firefox you can download extensions which spy on you disguised as a weatherbug or a super toolbar. Guess what, statistics show Firefox has a lot of malicious extensions then IE. Problems in IE are exploits. But consider this: if Firefox can't even filter bad extensions let alone fixing exploits.
Please, you've already showed us your highly intelligent comments, no need to show off your super skills in how web coding works.
As to your list of why people should choose firefox, here's a list of why you should shut up and leave people with their decissions:

1) IE supports a wide range of protocols which or only available in firefox with some badly built extensions. I would rather prefer to see a malformed site ratherthen none at all.
2) Try check memory and time in opening IE7 and FF3: IE7 loads in about 2 seconds, FF 6. IE used 7Mb on this page, FF uses 13Mb. Not nice, eh?
3) FF has a huge repertoire of extensions (which spy on you) and I expect Chrome will (not) have the same (Chrome as said on their site, will be a simplistic functional browser without addons of any type). All IE has is a bunch of crappy toolbars and some drive-by viruses (if you are stilling using IE 5.5, but it is a fact that most viruses in IE are cought due to user error/stupidity).

By the way, let's see how much you'd love firefox after reading:
http://home.comcast.net/~SupportCD/FirefoxMyths.html
(also verified by http://www.techspot.com/vb/topic44405.html)

Dr. Watz0n - I find Chrome interesting, but highly dislike their lies about it being secure. No browser can be secure enough - believe me. If you want, check the link about Chrome I gave. It is also interesting to note that in the last week, there's been more then 4 exploits found to DOS (crash) Chrome.

Dylijn - People should start not inventing things.
1) Google ain't spreading any virus. If you read my previous posts, the bad code tries to get into your gmail/google services acount and get your data. Don't worry, you password will be secure if you didn't save it in any email. This method is called XSS, which I've outlined how it works.
2) Commercial antiviruses are quite good, but you can't assume it is good just because of that. People assume too much things about security. My Avast 4 (free) alerted me about the virus and gave me the ability to abort the connection; meaning the virus has even touched my computer.
In my life, I've used several antiviruses including avg, nod and mccafe. Avast has done the job and persisted my preference through time.

Unlike some people around, which believe in the common lies, my preference is FAR from biased.

Just because it says there's a 404 error doesn't actually mean there's a 404 error.

Actually, you are wrong on some counts, and even when you aren't completly wrong, you fail to notice the security lapses in IE. Yes, Firefox may have malicious extensions, but have you ever heard of things like Smiley Central, My Web Search, etc? All of these toolbars that people install without knowing also perform malicious activity. I wouldn't want a toolbar tracking what websites I go to, just so it can target pop up ads to what I have been viewing. You seem to forget that stuff like that is just as malicious as 'rouge' Firefox extensions (which I have never encountered in my three years of Firefox use). Oh, and you are prompted to install Firefox extensions, they don't just magically get added to your system. Secondly, if you are going to fret about memory, then go ahead. Just don't fret over 6MB, okay? You see, most people today have at least 512MB, and a few here and there don't make that much of a difference. Have you ever done tests to see how fast tabs open in each browser? Firefox will most likely conquer over IE. Finally, I would like to see the list of protocols (the exclusion of FTP, as you will read below, please) that IE supports over Firefox. Yes, I know you are going to say FTP. But do you actively use the FTP feature in IE? Have you ever noticed how folders randomly get dropped out of the upload process? Do you despise the lack of information given by the IE FTP interface? Exactly. Yes, it may have FTP, but it is just as poor as the FTP extension for Firefox. If you use FTP even occasionally, you need to download a full fledged FTP client like FileZilla.

Not all free anti-viruses are bad. I use threat fire and it seems to get the job done. Gives me a list of some of the most wide spread known viruses' trogans and such around the world. And if it sees something that is suspicious it immediately ask me if i want to kill it or let it pass....

Personally, Firefox has a good way in plugins. There are many more usefull plugins in firefox. But there are two things which you err on:
-Plugins both in IE and FF can only be installed after the user accepts them ALWAYS. Some plugins in IE can be installed after a downloaded package. You know like Adobe's software asking you to install google toolbar. This happens a lot in IE but hasn't much of a foothold in FF.
-I've been developing plugins for both browsers, and can say that FF plugins leave more control to the programmer rather the IE which has a limiting sandbox (consider how easily plugins for firefox can be done rather then in IE) of course in this case, more control=more dangerous.

With 2Gb of RAM here, I can't complain in fact I don't. But people don't get things right. Some people claimed the firefox can be run on a 16Mb 500Mhz system. By far, only IE6 could ever do that.
As to tabs, with automatic switching I find them faster in IE7 then FF3.
What really pisses me off is startup speed, which you forget to comment about .

By far, I prefer IE's ftp, but rather then FTP it has a support for a wide range of components especially available for intranet control. I found them very easy to work with. FF doesn't support anything similar, not even with plugins.
I'm not sure about that. Can't say IE is good, but my point here ain't who's conquering who, but rather who's forcing who. Whenever I install a new XP OS the first I do is updating. And guess with what? IE, because firefox ain't there. I simply prefer having IE preinstalled then having to play around with Firefox. For me, firefox is a good development aid. I've been in website design for a couple of years now. I've been actually working in this industry, and the good people I've met with doesn't fret about these sort of things.

For widespread use, I use that . But in emergencies, I use a Dos prompt or IE. Some people term that as a life saver; it is .

Gees, people, settle down. Okay, we get the point. There's malware. No-one can do anything about it till an administrator is around. My original topic was intended for notification, not discussion.

The best solution is to block the site if you're in IE. FF3 and Chrome users don't have to worry about the threat.

Yeah, Chrome users have something else to worry about . Haha XD
I wouldn't have started this discussion if some people wouldn't have started to force us to muve to firefox because of this. Now now, they are quite good at taking the situation at hand, do they?

Oh congratulations, you found something we already know about. Here, have a cookie.

Maybe people didn't get the intention of my post here, which is that the malware is not going to magically disappear if people post enough. Nope, it's going to stay there until an administrator removes it.

i don't know if this was said already but my avast! was picking something up earlier today then that stopped and i've been using this site since this morning and nothing has happened until now when this message supposedly from google was saying this is a reported attack site and when ever i go to a new page i have go through this message and click ignore and it's really getting annoying, anyone else getting this message?

I got this too!
Now please explain:
Is this serious? Is there actually a virus or was it just a false accusation?
Also, when will it be fixed?

Firefox is now blacklisting the GMC (Firefox 3.0.1). Obviously you can ignore the warning, but it is quite potent.

A note to those who are getting the "Suspected attack site" message using Firefox: If you don't want to see that message, go to Tools>Options>security and uncheck the relevant box. However, should you end up visiting an actual attack site, you won't know it until your virus scanner detects it/ you re-check the box.

I use Nod32 Antivirus, with the latest definition database, and I use FF3 Portable, and have not received any message as of yet. To be sure, though, I pulled a full system scan. I have but a single virus.

Strangely, AVG has been popping up when i'm on the forum. not every time i change page, just once in a while.

Yeah, it was fine earlier when I was using the GMC and reading this thread, but now Firefox seems to have backlisted it. :/

I want Yo-yo games to take action for once on this forum instead having their incompetent Mods deal with it and when they deal with it they just delete the post. Yo-yo games need to take action and stop relying on incompetent Mods to handle stuff cause all they do is delete any post and say post about it in Yo-yo games web site.

That doesn't work either so yo-yo games need to take action and stop letting incompetent Mods handle stuff they can't

They need to get this fixed and stop relying on their mods to handle stuff like this.

It does it cause somebody has reported that yo-yo games is a malicious site and it is yo-yo games job to clear the matter. Not use to find out why somebody reported it as a malicious site

I'm glad I use the Opera browser, I haven't had any of these problems, you should all consider switching to it.

I've never gotten any warnings. I use 5 browsers.

arghh this is so annoying.